Vulnerabilities > CVE-2003-1516 - Cross-Site Applet Sandbox Security Model Violation vulnerability in SUN Java Plug-In 1.4.201

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

sun

exploit available

NVD

Published: 2003-12-31

Updated: 2008-09-05

Summary

The org.apache.xalan.processor.XSLProcessorVersion class in Java Plug-in 1.4.2_01 allows signed and unsigned applets to share variables, which violates the Java security model and could allow remote attackers to read or write data belonging to a signed applet.

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN Java Plug IN 1.4.2_01	1

Exploit-Db

description	Sun Java Plug-In 1.4.2 _01 Cross-Site Applet Sandbox Security Model Violation Vulnerability. CVE-2003-1516. Remote exploit for windows platform
id	EDB-ID:23265
last seen	2016-02-02
modified	2003-10-20
published	2003-10-20
reporter	Marc Schoenefeld
source	https://www.exploit-db.com/download/23265/
title	Sun Java Plugin 1.4.2 _01 - Cross-Site Applet Sandbox Security Model Violation Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References